83e24f48ecd4b83166fbefdf5e62fe7f24fc2bf811436baa778b89585ad5be30 | Triage

Submit
Reports

Overview

overview

Static

static

83e24f48ec...30.exe

windows7-x64

83e24f48ec...30.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

83e24f48ecd4b83166fbefdf5e62fe7f24fc2bf811436baa778b89585ad5be30.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

83e24f48ecd4b83166fbefdf5e62fe7f24fc2bf811436baa778b89585ad5be30.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

83e24f48ecd4b83166fbefdf5e62fe7f24fc2bf811436baa778b89585ad5be30
Size

130KB
MD5

717e9515416216f66352beb34bc4132f
SHA1

a7184924e9bbaeebb9c6abb628fcc2d40f1bdb27
SHA256

83e24f48ecd4b83166fbefdf5e62fe7f24fc2bf811436baa778b89585ad5be30
SHA512

44198d38098606e09fc5c41e1141a31cdee4983089fbe5c1d7bba2d4055759dec3d44ef763648ee20309cd1fa0e0defccd6b2f48d820bf6175f09f3429641a76
SSDEEP

1536:0dXTs205HIorRJg4gDYEzc0kfwo3fT4OHJMUY+UFJ7wT0lwm8TFPRyFUIth9s9ZG:SKH9/E1No3fTlHep+UTYOfAPRyGOefw

Score

N/A

Malware Config

Signatures

Files

83e24f48ecd4b83166fbefdf5e62fe7f24fc2bf811436baa778b89585ad5be30
.exe windows x86

363ca026403b51173e65150e3030e551

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
GetLocalTime
SetLastError
HeapSize
SetLastError
CreateHardLinkW
WriteConsoleA
GlobalFree
GetStartupInfoA
CreateDirectoryW
DeleteFileW
SetEvent
CloseHandle
LoadLibraryA
GetProcessHeap
lstrlenA
GetTickCount
CreateMutexA
VirtualProtectEx
CreateSemaphoreA
Sleep

cryptui

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

vdmdbg

VDMGetPointer
VDMDetectWOW
VDMBreakThread
VDMGetContext

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy